DEV Community

Santhosh Thomas
Santhosh Thomas

Posted on

How To Store Certificate (.pem) in Azure Keyvault using Secrets and fetch values from secrets into pem file using python

Convert .pem Certificate file into base64 using certutil

certutil -encode filename.cer newfilename.cer
Enter fullscreen mode Exit fullscreen mode
  1. Go to azure portal

  2. Select ketvault service

  3. Create a new keyvault

  4. Select secrets from setting on sidepanel

  5. Create a new secret

  6. Copy paste base 64 into secret value and save it

### Python code to fetch certificate value from keyvault and store into a pem file

from azure.identity import DefaultAzureCredential
from azure.keyvault.secrets import SecretClient
credentials = DefaultAzureCredential()
secret_client = SecretClient(vault_url=key_vault_url, credential=credentials)
cert_value =  secret_client.get_secret("Certificate").value

with open('certificate.pem','w') as fopen:
        fopen.write(base64.b64decode(cert_value).decode())
Enter fullscreen mode Exit fullscreen mode

Discussion (0)